Topic: "Reported Attack Site!" (Read 1653 times)

mashean · « **Reply #15 on:** April 21, 2008, 10:16:51 AM »

The same thing just popped up for me for the second time. I "healed" it both times. It was called Downloader.Scagent.l

The Ston · « **Reply #16 on:** April 21, 2008, 03:57:51 PM »

Morning folks

The site is definitely not clean at the mo, Sophos warns me of the following:

Troj/Dorf-BB in opr0054C.xml and opr0054U.exe

Also, the site tried to run a java applet with privileges which would allow it to harm my PC, I managed to get the following information about this:

HITPOINT Ltd., S.A.
Thawte code signing CA
Thawte Premium server CA

I don't particularly trust that these are genuine certificate authorities!

The Ston · « **Reply #17 on:** April 21, 2008, 04:18:59 PM »

Info on the Trojan here:

http://www.sophos.com/security/analyses ... orfbb.html

Daveejayuk · « **Reply #18 on:** April 21, 2008, 07:00:21 PM »

AVG back to popping up again too from today - was alright yesterday

djrussell · « **Reply #19 on:** April 21, 2008, 07:14:10 PM »

just had this pop up on me.

Neo Rabid · « **Reply #20 on:** April 22, 2008, 06:37:22 AM »

Ok I have been to this site today on 5 different computers on 5 different networks all using anitvirus and I have had nothing pop-up, its kind of hard to troubleshoot when there is nothing there for me.

I think everyone should clear there cache and cookies and run a full virus scan. then let me know how things go.

The Ston · « **Reply #21 on:** April 24, 2008, 03:15:50 PM »

I've tried clearing Opera's cache and have re-opened the forum page.

Sophos is now warning of both Troj/Dorf-BB and Mal/TibsPak.

Info on the second one here:

http://www.sophos.com/security/analyses ... bspak.html

Swizzle Stick · « **Reply #22 on:** April 25, 2008, 05:52:55 AM »

Had the site up at work for the first time in weeks yesterday and the McAffee caught something. I had to shut down right away...if I infect a work computer the Z will have to go up for sale due to unemployment! I've had better luck at home, but the AVG just did catch something. It did heal right away, though.

miguel · « **Reply #23 on:** April 30, 2008, 04:22:45 AM »

my I.T. department at work had to completely reload my laptop to clear this virus. i'm sure glad i wsan't using my pesonal laptop when i caught it!

The Ston · « **Reply #24 on:** April 30, 2008, 08:33:49 PM »

I haven't had Sophos moaning for the past few days...has the site been swept clean again recently?

djrussell · « **Reply #25 on:** April 30, 2008, 09:04:48 PM »

Quote from: "miguel"

my I.T. department at work had to completely reload my laptop to clear this virus. i'm sure glad i wsan't using my pesonal laptop when i caught it!

between wrecking your last laptop and getting the virus on this one, i'm sure they're just loving you. :axe:

telihawk · « **Reply #26 on:** April 30, 2008, 10:09:44 PM »

I use Opera and AVG. No problems with me so far no matter how long I have the page open...

I hope it stays that way... :dwarf:

Neo Rabid · « **Reply #27 on:** May 01, 2008, 02:48:10 AM »

yeah I havent been reporting the updates in this thread.

shouldnt pop up anymore. :thumbright:

miguel · « **Reply #28 on:** May 01, 2008, 09:28:26 AM »

Quote from: "djrussell"

Quote from: "miguel"
my I.T. department at work had to completely reload my laptop to clear this virus. i'm sure glad i wsan't using my pesonal laptop when i caught it!

between wrecking your last laptop and getting the virus on this one, i'm sure they're just loving you.

you're not kidding. i've already been given a friendly reminder about how much our laptops cost.

Z750S & Z750 Owner's Association

News:

Author Topic: "Reported Attack Site!" (Read 1653 times)

mashean

(No subject)

The Ston

(No subject)

The Ston

(No subject)

Daveejayuk

(No subject)

djrussell

(No subject)

Neo Rabid

(No subject)

The Ston

(No subject)

Swizzle Stick

(No subject)

miguel

(No subject)

The Ston

(No subject)

djrussell

(No subject)

telihawk

(No subject)

Neo Rabid

(No subject)

miguel

(No subject)